Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WS8dONiwKwFpBOeskWtIbfXEaP4.roa
File: WS8dONiwKwFpBOeskWtIbfXEaP4.roa (raw, json)
Hash identifier: J4Xw1Q+8zCuFU47vGkYkg+WOqRFohvA4U2idITsTGXc=
Subject key identifier: 59:2F:1D:38:D8:B0:2B:01:69:04:E7:AC:91:6B:48:6D:F5:C4:68:FE
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01ADF522
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WS8dONiwKwFpBOeskWtIbfXEaP4.roa
Signing time: Tue 01 Feb 2022 11:41:43 +0000
ROA not before: Tue 01 Feb 2022 11:41:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7203
IP address blocks: 2a0f:1e84::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28177698 (0x1adf522)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 1 11:41:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=592f1d38d8b02b016904e7ac916b486df5c468fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e9:26:4e:34:1c:e1:ce:14:8b:32:f5:ce:89:
a3:d0:e0:53:29:2b:e6:ec:65:fe:3f:bc:ec:34:fa:
89:c6:a2:2e:93:12:72:bd:f2:90:de:85:29:45:4d:
d9:70:37:df:58:96:ae:70:f1:59:2c:50:3b:a1:f2:
9f:6c:92:4d:e6:53:25:eb:b0:70:04:f4:0c:3a:84:
c3:a4:86:ec:a6:cb:f5:51:7f:bd:08:49:e5:1f:75:
1d:11:98:04:a5:b4:89:e7:6d:bd:7d:e2:a1:a4:bc:
17:cb:f6:d4:27:6c:78:2e:89:19:17:ee:a4:b3:96:
78:eb:d9:9b:ca:10:f2:cb:0e:a0:31:34:c0:75:5d:
5c:ff:67:6a:e8:89:2e:3b:a9:10:ed:8b:bc:41:e9:
7e:70:26:9d:5c:a5:0c:21:e5:10:79:ea:32:e8:e8:
ed:20:df:27:bf:28:18:79:dc:21:9c:d1:0c:4f:97:
67:e0:d0:eb:a9:a2:0c:1a:91:30:88:14:dd:70:4e:
cf:f3:2c:bd:60:18:50:d1:aa:8a:c2:2c:38:6e:68:
d3:d1:44:2b:95:e1:81:5d:be:94:ff:77:e3:dd:e7:
76:c9:2a:27:18:45:24:6b:74:57:e4:82:b8:3f:6a:
a9:e4:eb:21:0d:8a:0d:9b:25:56:4a:ca:54:f0:7a:
a3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:2F:1D:38:D8:B0:2B:01:69:04:E7:AC:91:6B:48:6D:F5:C4:68:FE
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/WS8dONiwKwFpBOeskWtIbfXEaP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:1e84::/32
Signature Algorithm: sha256WithRSAEncryption
58:88:c2:78:f3:7b:f8:94:3e:bd:41:b6:48:79:dc:e7:39:bc:
12:1b:15:4e:91:ac:8e:39:c0:3c:c9:1e:e1:fc:b7:a1:28:3d:
23:99:d6:8b:0b:ea:9a:db:40:40:f4:d1:4d:30:6d:ba:0a:21:
4c:4b:2a:6b:20:7d:b3:a9:cf:09:c8:3a:60:48:79:56:df:e3:
60:af:72:a2:a3:11:19:ee:56:89:44:06:66:76:fe:12:eb:86:
0b:99:08:54:6b:b8:84:18:05:09:5d:3d:9a:61:74:8e:26:da:
59:34:11:ff:86:a4:64:9f:67:6d:bf:81:0d:08:bc:64:47:86:
ff:7b:5c:70:d3:8a:5a:93:75:5c:7e:50:bd:89:cc:c8:87:48:
63:c4:4c:09:e5:1f:ee:30:f7:fa:e2:d7:4e:b4:6f:0c:fe:3a:
bc:54:71:95:4f:26:e8:2e:00:87:d7:29:f8:9a:f6:50:3f:b9:
ac:09:dd:0c:46:7e:1f:43:44:52:bb:5a:06:d4:ac:b2:38:ee:
8c:a8:a7:8e:c1:21:c3:f3:c0:32:8a:99:7a:e9:6c:b2:ae:b0:
f1:30:20:5b:e4:ea:4e:a9:fe:29:95:fd:15:05:ee:b7:dc:07:
9f:4a:c8:b2:7b:35:4a:5c:df:a7:15:48:45:e0:03:00:87:7c:
60:0b:c8:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:27 2025 by rpki-client